$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4faff6b-7147-4379-8860-35d017a1379c.roa File: a4faff6b-7147-4379-8860-35d017a1379c.roa (raw, json) Hash identifier: INzGbRfihEGax03KRUX0mF5K+BgN9uqne/KSQe2H4So= Subject key identifier: 35:F3:61:B6:10:37:FA:E4:40:3D:62:BE:57:C9:07:D9:FA:AA:FA:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A3AA57F8AD153448245A104672840D58D796CC6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4faff6b-7147-4379-8860-35d017a1379c.roa Signing time: Fri 29 May 2026 14:02:21 +0000 ROA not before: Fri 29 May 2026 14:02:21 +0000 ROA not after: Thu 27 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 15.175.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:3a:a5:7f:8a:d1:53:44:82:45:a1:04:67:28:40:d5:8d:79:6c:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 29 14:02:21 2026 GMT Not After : Aug 27 23:59:59 2026 GMT Subject: serialNumber=da0ad04dff72c49580a3b0b91f211777e447da05624865e33a037b875f283676, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:ac:12:dd:b0:3e:ac:f7:4b:91:e4:81:1c:57: df:c3:e2:49:64:bb:53:ed:93:91:db:b9:60:d8:77: d9:9d:55:88:b2:1d:0d:1e:75:d4:7e:40:32:ab:e3: 47:9d:bf:24:aa:3e:e7:de:03:ae:be:12:76:c5:5d: 7f:96:3b:c6:79:4b:fb:fd:0d:75:7a:c3:bd:9c:ab: 94:99:88:71:0f:d1:7a:57:e4:88:2e:ed:b6:e4:d0: a8:3d:5a:5c:56:f1:a0:2b:f2:b7:bf:71:f3:2a:cc: 4a:be:39:2a:a7:3e:2b:b1:2b:93:2f:c9:96:6c:56: ab:a5:b6:f1:1e:f9:13:87:b7:7c:1e:2f:f5:b0:5c: 3d:37:72:b0:90:cf:09:34:82:f6:bf:0f:a2:1e:0e: 9a:9b:74:c2:dc:05:de:32:8f:ef:be:34:5d:68:8d: f7:b2:3c:43:c0:6d:41:0a:ed:7e:eb:aa:d0:4b:f3: 02:f7:e7:6e:1c:b1:07:5b:90:fb:33:21:d6:9b:4b: 54:9e:38:16:4b:9e:b2:92:41:bb:ae:73:e8:c7:99: ee:b2:2e:4e:6f:f1:2e:73:38:e3:e0:6b:38:7f:69: f5:a0:33:76:0d:31:e3:7a:95:42:e6:a3:92:59:73: cc:e0:f4:db:03:79:8b:b1:b2:7f:69:a9:e0:c1:2d: aa:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:F3:61:B6:10:37:FA:E4:40:3D:62:BE:57:C9:07:D9:FA:AA:FA:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4faff6b-7147-4379-8860-35d017a1379c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.175.128.0/17 Signature Algorithm: sha256WithRSAEncryption be:56:df:55:9b:00:85:68:f4:40:79:a3:6d:94:94:c2:ee:87: e3:a8:3a:a9:39:ec:74:e7:70:16:0e:15:3f:b9:0b:14:f9:03: 80:31:0a:23:94:ee:1c:47:a0:fd:99:7d:5e:d3:a6:55:a5:1e: c0:03:3b:a6:60:6b:df:1d:41:fc:92:4e:20:17:b7:5f:be:73: f4:cb:96:89:4c:a7:74:f8:83:e9:a5:b5:a6:04:4a:ad:0f:7d: ac:1e:ac:5d:13:32:57:c5:86:4e:09:d5:d0:99:1a:a3:f7:4f: 16:9e:8c:4a:c2:c1:e0:80:85:af:93:d2:1c:79:50:12:53:3c: 68:ab:e7:3e:05:f4:f1:77:24:96:8f:cf:88:48:ce:ed:07:2b: ed:ab:78:64:6c:07:f5:4c:ea:76:4e:68:9e:e7:f2:44:2e:a7: 22:e4:b7:bd:3e:91:0e:83:b2:26:79:76:c7:a8:97:14:2f:43: da:aa:38:45:b1:cd:e8:70:9f:a5:2e:ec:4e:56:39:07:84:4c: 15:36:3b:fa:e8:ed:01:45:58:db:fb:7a:ba:d2:2b:43:d9:57: 2e:f8:30:43:f1:ef:8e:b6:65:44:d9:7a:62:7f:a7:6e:07:8a: 07:86:fd:2f:cf:1f:4e:fb:42:ae:b0:11:c8:aa:72:18:2c:a5: 6d:5e:c8:9c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGjqlf4rRU0SCRaEEZyhA1Y15bMYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTI5MTQwMjIxWhcNMjYwODI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTBhZDA0ZGZmNzJjNDk1ODBhM2IwYjkxZjIxMTc3N2U0 NDdkYTA1NjI0ODY1ZTMzYTAzN2I4NzVmMjgzNjc2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgrBLdsD6s90uR5IEcV9/D4klku1Ptk5HbuWDYd9mdVYiy HQ0eddR+QDKr40edvySqPufeA66+EnbFXX+WO8Z5S/v9DXV6w72cq5SZiHEP0XpX 5Igu7bbk0Kg9WlxW8aAr8re/cfMqzEq+OSqnPiuxK5MvyZZsVqultvEe+ROHt3we L/WwXD03crCQzwk0gva/D6IeDpqbdMLcBd4yj+++NF1ojfeyPEPAbUEK7X7rqtBL 8wL3524csQdbkPszIdabS1SeOBZLnrKSQbuuc+jHme6yLk5v8S5zOOPgazh/afWg M3YNMeN6lULmo5JZc8zg9NsDeYuxsn9pqeDBLapDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNfNhthA3+uRAPWK+V8kH2fqq+vAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E0ZmFmZjZiLTcxNDctNDM3OS04ODYwLTM1ZDAxN2ExMzc5Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcPr4AwDQYJKoZIhvcNAQELBQADggEBAL5W31WbAIVo9EB5o22UlMLuh+Oo Oqk57HTncBYOFT+5CxT5A4AxCiOU7hxHoP2ZfV7TplWlHsADO6Zga98dQfySTiAX t1++c/TLlolMp3T4g+mltaYESq0PfawerF0TMlfFhk4J1dCZGqP3TxaejErCweCA ha+T0hx5UBJTPGir5z4F9PF3JJaPz4hIzu0HK+2reGRsB/VM6nZOaJ7n8kQupyLk t70+kQ6DsiZ5dseolxQvQ9qqOEWxzehwn6Uu7E5WOQeETBU2O/ro7QFFWNv7errS K0PZVy74MEPx7462ZUTZemJ/p24HigeG/S/PH077Qq6wEciqchgspW1eyJw= -----END CERTIFICATE-----Generated at Sat Jun 13 06:39:43 2026 by rpki-client